http://securityresponse.symantec.com/avcenter/venc/data/w32.sqlexp.wor m.html ----- Original Message ----- From: "Simon Lockhart" <[EMAIL PROTECTED]> To: "Mike Tancsa" <[EMAIL PROTECTED]> Cc: "Avleen Vig" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Saturday, January 25, 2003 3:48 AM Subject: Re: New worm / port 1434?
> > On Sat Jan 25, 2003 at 02:19:04AM -0500, Mike Tancsa wrote: > > Yes, I am seeing this big time. Are you sure its SQL server ? Thats > > normally 1433 no ? Are there any other details somewhere about this ? > > This URL seems to explain the exploit: > > http://www.nextgenss.com/advisories/mssql-udp.txt > > Simon > -- > Simon Lockhart | Tel: +44 (0)1628 407720 (BBC ext 37720) > Technology Manager | Fax: +44 (0)1628 407701 (BBC ext 37701) > BBC Internet Services | Email: [EMAIL PROTECTED] > BBC Technology, Maiden House, Vanwall Road, Maidenhead. SL6 4UB. UK >